Threats on windows 2003

Hello:

Kindly explain whats the possible areas through which mine windows 2003 server security gets compromised on remote as well as on local network.

Early response will be appreciated.

Thanks in advance.

Regards
iTeamIndiaAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Tim HolmanCommented:
It doesn't matter where the server is, it is still susceptible to the same exploits.
You need to stay right on top of patches - eg www.windowsupdate.com to minimize the risk of exploitable vulnerabilities.

Take a look at a hardening guide - it will give you a good idea where to start:

http://www.windowsecurity.com/articles/Windows-Server-2003-Hardening-List-Part1.html
iTeamIndiaAuthor Commented:
Kindly advise me the key areas from where hacker can attack on windows server 2003.
iTeamIndiaAuthor Commented:
also I have already this link provided by you.

Regards
OWASP Proactive Controls

Learn the most important control and control categories that every architect and developer should include in their projects.

Tim HolmanCommented:
1)  Hacker scans for open ports on your server
2)  Hacker tries to attack open ports
3)  If machine is unpatched, then hacker is successful

By following the above, it makes sense to close down all unnecessary ports, and ensure patches are up to date with regards to services that use open ports.

There aren't any 'key areas' as such, as the attack footprint is very large on a general purpose server.

What is the context of this question?  What services are you going to be running?  Will it have a public IP ?

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
iTeamIndiaAuthor Commented:
We are going to upgarde our network to Windows 2003 Server. I am looking for key areas where my server is compromised, so that I configure securities on that. There is 250 peoples network, which is going to be connected to 17 cities.

We have Linux gateway having public IP.

Kindly advise Any more suggestions.

Regards
Tim HolmanCommented:
You need to secure ALL areas, on not just 'key' areas.
The hardening guide is a good start.
Dmitri FarafontovLinux Systems AdminCommented:
eEye Digital Software is pretty good about it:

Use Retina Security Scanner, to check your network for vulnerabilities
Install Blink, as an Intrusion Detection System on each server
Install Secure IIS, on all of the machines with a webserver.

They should shield you from known and unknown attacks. I personally recommend it. It is not that cheap, but security is peace of mind at the end :-)
Tim HolmanCommented:
Can you provide any update?  Did any suggestions help?  If you need assistance in closing down the question, visit http://www.experts-exchange.com/help.jsp.
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
OS Security

From novice to tech pro — start learning today.